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Abstract We give in this paper a short semantical proof of the strong normalization 
for full propositional classical natural deduction. This proof is an adaptation of reducibility 
candidates introduced by J.-Y. Girard and simplified to the classical case by M. Parigot. 

1 Introduction 

This paper gives a semantical proof of the strong normalization of the cut-elimination 
procedure for full propositional classical logic written in natural deduction style. 
By full we mean that all the logical connectives (_L, — A and V) are considered as 
primitive. We also consider the three reduction relations (logical, commutative and 
classical reductions) necessary to obtain the sub formula property (see [5]). 

Until very recently (see the introduction of [5] for a brief history), no proof of 
the strong normalization of the cut-elimination procedure was known for full logic. 

In [5], Ph. De Groote gives such a proof by using a CPS-style transformation 
from full classical logic to implicative intuitionistic logic, i.e., the simply typed 
Z-calculus. 

A very elegant and direct proof of the strong normalization of the full logic is 
given in [6j but only the intuitionistic case is given. 

R. David and the first author give in [3] a direct and syntactical proof of this 
result. This proof is based on a characterization of the strongly normalizable de- 
ductions and a substitution lemma which stipulates the fact that the deduction 
obtained while replacing in a strongly normalizable deduction an hypothesis by an- 
other strongly normalizable deduction is also strongly normalizable. The same idea 
is used in [5] to give a short proof of the strong normalization of the simply typed 
i/x-calculus of 0. 

R. Matthes recently found another semantical proof of this result (see [?])• His 
proof uses a complicated concept of saturated subsets of terms. 

Our proof is a generalization of M. Parigot's strong normalization result of the 
A^-calculus (see [10]) for the types of J.-Y. Girard's system T using reducibility 
candidates. We also use a very technical lemma proved in [3] concerning commuta- 
tive reductions. To the best of our knowledge, this is the shortest proof of a such 
result. 

The paper is organized as follows. In section 2, we give the syntax of the terms 
and the reduction rules. In section 3, we define the reducibility candidates and 
establish some important properties. In section 4, we show an "adequation lemma" 
which allows to prove the strong normalization of all typed terms. 
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2 The typed system 

We use notations inspired by the paper [Tj. 

Definition 2.1 1. The types are built from propositional variables and the con- 
stant symbol _L with the connectors — >, A and V. 

2. Let X and A be two disjoint alphabets for distinguishing the X-variables and 
^.-variables respectively. We code deductions by using a set of terms T which 
extends the l-terms and is given by the following grammars: 

T := X | XX. T | (T £) | (T,T) | wiT | lj 2 T \ fiA.T \ (A T) 
£ := T |tt x I ir 2 | [X.T,X.T] 

An element of the set £ is said to be an £-term. 

3. The meaning of the new constructors is given by the typing rules below where 
r (resp. A) is a context, i.e. a set of declarations of the form x : A (resp. 
a : A) where x is a l-variable (resp. a is a ^.-variable) and A is a type. 



T,x : A h x : A ; A 
T,x: A^t: B;A Thu:A^B;A T ^ v : A; A 



r h Xx.t : A -» B- A rh(« u):B;A 

T\-u:A;A T^v.B-A 

-hi 



T h (u, v) : A A B; A 



V h t : A A B; A , T\- t : AAB;A 9 
-Ai — — ' ; hi 



rh (f tti) : A; A e T h (t n 2 ) : B\ A 



YVt:AA , YVt:B:A , 
' -V ■ V 



ri-wi«: AVB;A 1 rhw 2 f:4VB;A 

T*rt:AVB;A T,x : A h u : C\ A T,y : B \- v : C; A^ 
rh(t [x.u, ?/.*;]) : C; A ' 

rhf:A;A,a:A , rhf:l;A,a:A , 

rCfOSi — — - — - — abs e 



r h (a t) : _L; A, a : A T \- fia.t : A; A 

4- The cut- elimination procedure corresponds to the reduction rules given bellow. 
There are three kinds of cuts: 

(a) The logical cuts: They appear when the introduction of a connective is 
immediately followed by its elimination. The corresponding rules are: 

• (Xx.u v) > u[x := v] 

• ((ti,t 2 ) Wi)>ti 

• (ujit [x±.ui, x 2 .u 2 ]) > Ui[xi := t] 

(b ) The permutative cuts: They appear when the elimination of the disjunc- 
tion is followed by the elimination rule of a connective. The corresponding 
rule is: 

• ({t [xi.ui,X2.u 2 ]) e)>(t [xi.(ui e),x 2 .(u 2 e)}) 
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(c) The classical cuts: They appear when the classical rule is followed by the 
elimination rule of a connective. The corresponding rule is: 

• (fia.t e) > fia.t[a :=* e\, where t[a :=* e] is obtained from t by 
replacing inductively each subterm in the form (a v) by (a (v e)). 

Notation 2.1 Let t and t' be E-terms. The notation t>t' means that t reduces to 
t' by using one step of the reduction rules given above. Similarly, t >* t' means that 
t reduces to t' by using some steps of the reduction rules given above. 

The following result is straightforward. 
Theorem 2.1 IfT\-t:A;A and t >* t' then V h t' : A; A. 

We have also the confluence property (see PQ, [5] and [5]). 

Theorem 2.2 Ift>*t\ andt\>*t2, then there exists t% such that t±>* £3 andt^^t^. 

Definition 2.2 An £-term t is said to be strongly normalizable if there is no in- 
finite sequence {ti)i <UJ of E-terms such that to = t and ti > tj+i for all i < lj. 

The aim of this paper is to prove the following theorem. 

Theorem 2.3 Every typed term is strongly normalizable. 

In the rest of the paper we consider only typed terms. 

3 Reducibility candidates 

Lemma 3.1 Let t,u and u' be E-terms such that u>vf, then: 

1. u[x := t] > u'[x := t] and u[a :=* t] > vl [a :—* t] . 

2. t[x := u] >* t[x := u'\ and t[a :=* u] >* t[a :=* u']. 

Proof 1) By induction on u. 2) By induction on t. □ 

Notation 3.1 The set of strongly normalizable terms (resp. E-terms) is denoted 
by TV (resp. J\f )■ IftE A/"', we denoted by n(t) the maximal length of the reduction 
sequences oft.We denote also J\f /<UJ the set of finite sequences of M' . 

Definition 3.1 Let w — w\...w n S AT' <LU , we say that w is a nice sequence iff w n 
is the only E-term in w which can be in the form [x.u,y.v]. 

Remark 3.1 The intuition behind the notion of the nice sequences will be given 
in the proof of the lemma \3.S\ 

Lemma 3.2 Let w — w\...w n be a nice sequence and w' — Wi...w' i ...w n where 
Wi>w' i . Then w' is also a nice sequence. 

Proof This comes from the fact that if e > [x.u, y.v] then e = [x.p, y.q], where 
p > u or q > v. □ 
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Notation 3.2 1. The empty sequence is denoted by 0. 

2. Let w = wi...w n a sequence of £ -terms and t a term. Then (t w) istifn — 
and ((t w\) W2-..w n ) if n ^ 0. The term t[a :=* w] is obtained from t by 
replacing inductively each subterm in the form (a v) by (a (v w)). 

3. If w — w\...w n is a nice sequence, we denote rj(w) = X!™=i v( w i)- 
Lemma 3.3 Let w be a nice sequence. 

1. (xw) S TV. 

2. Ifu£Af and (t[x := u] w) £ Af, then ((Xx.t u) w) £ TV. 

3. Ifti,t 2 £ Af and (U w) ejV, then (((*]., *2> ^i) w) £ TV. 

4- If t,ui,v,2 E Af and Ui[x{ := t] tE Af , then (u>it [xi.Ui, X2.U2]) € N. 

5. Ift[a :=* w] £ Af, then (jia.t w) £ TV. 
Proof 

1. Let w = ui\...w n . All reduction over (x w) take place in some Wi, because w 
is a nice sequence, and therefore the uii cannot interacte between them via 
commutative reductions. Since all u>i are strongly normalizable, then (x w) 
itself is strongly normalizable. 

2. It suffices to prove that: If ((Xx.t u) w) > s, then s G TV. We process by 
induction on r](u) + r)(t[x :— u] w). Since w — w%...w n is a nice sequence, the 
Wi cannot interact between them via commutative reductions. We have four 
possibilities for the term s. 

• s = ((Xx.t' u) w) where t > t': By lemma [5~T1 (t'[x := u] w) £ Af and 

T](u) + rj((t'[x :— u] w)) < rj(u) + rj((t[x := u] w)), then, by induction 
hypothesis, s £ Af. 

• s = ((Xx.t u') w) where ut>u': By lemma 1531 (t[x := u'] w) £ Af and 
rj(u') + f}((t[x := vl] w)) < rj(u) + rj((t[x := u] w)), then, by induction 
hypothesis, s £ Af. 

• s = ((Xx.t u) w') where w' = Wi...w' i ...w n and Wi > w'f. By lemma [3~^1 
w' is a nice sequence. We have (t[x := u] w') £ Af and rj(u) + T)((t[x := 
u] w')) < rj(u) + r]((t[x := u] w)), then, by induction hypothesis, s £ Af. 

• s = (t[x := u] w): By hypothesis, s £ Af. 

3. Same proof as 2). 

4. Same proof as 2). 

5. It suffices also to prove that: If (iia.t w) > s, then s £ Af. We process by 
induction on the pair (lg(w), rj(t[a :=* w}) + r](w)) where lg(w) is the number 
of the £-terms in the sequence w. We have three possibilities for the term s. 

• s = (pia.t 1 w) where tt>t': By lemma l3~Tl t'[a :=* w] £ Af and rj(t'[a :=* 
w}) < i](t[a :=* w]), then, by induction hypothesis, s £ Af. 

• s = (fia.t w') where w' — wi...w' i ...w n and n>i > w[: by lemma [3T^1 w' 
is a nice sequence and, by lemma 13.11 t[a :=* w'] £ Af and T}(t[a :=* 
w']) + rj(w') < T](t[a :=* w]) + i](w), then, by induction hypothesis, 
s e TV. 

• s = ([ia.t[a :=* Wi]w') where w' — W2--.w n : It is obvious that w' is 
a nice sequence and lg(w') < lg(w). We have t[a :—* Wi][a :—* w'] — 
t[a :=* w] £ Af, then, by induction hypothesis, s £ Af. 

□ 
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Lemma 3.4 Let w be a nice sequence. 

If (t [x.{u w),y.(v w)]) E Af, then ((t [x.u, y.v]) w) E Af. 

Proof This is proved by that, from an infinite sequence of reduction starting from 
((i [x.u, y.v]) w), an infinite sequence of reduction starting from (t [x.(u w), y.(v w)]) 
can be constructed. A complete proof of this result is given in 3 in order to 
characterize the strongly normalizable terms. □ 

Definition 3.2 1. We define three functional constructions (— >.A and V) on 

subsets of terms: 

(a) K -> L= {t ET/ for each u E K , (t u) E L}. 

(b) K A L = {t E T/ (£ tti) EK and (t tt 2 ) E L}. 

(c) K V L = {t E T ' I for each u,v E Af: If (for each r E K ,s E L: u[x := 
r] E Af and v[y := s] E Af), then (t [x.u, y.v}) E Af}. 

2. The set IZ of the reductibility candidates is the smallest set of subsets of terms 
containing Af and closed by the functional constructions — >. A and V. 

3. Let w — w\...uj n be a sequence of £ -terms, we say that w is a good sequence 
iff for each 1 < i < n, Wi is not in the form [x.u, y.v]. 

Lemma 3.5 If R € TZ, then: 

1. REAf. 

2. R contains the l-variables. 

Proof We prove, by simultaneous induction, that R C Af and for each Z-variable 
x and for each good sequence w E Af' <u} , (x w) E R. 

» Af: trivial. 

• R = Ri — * R2: Let t E R. By induction hypothesis, we have x E R\, then 
(i x) E R2, therefore, by induction hypothesis, (t x) E Af hence t E Af. 

Let w E Af' <ul be a good sequence and v E R\. Since wv is a good sequence, 
then, by induction hypothesis (a; wv) E R2, therefore {x w) E Ri — > i?2- 

• R — R\ A R2: Let t E R, then (f nf) E Ri and, by induction hypothesis, 
(t 7T,-) G Af, therefore t E Af. 

Let w E N' <u be a good sequence, then wni is also a good sequence and, by 
induction hypothesis, (a; witi) E Ri, therefore [x w) E R. 

• R = Ri V R2: Let t E R and y,z two /-variables. By induction hypothesis, 
we have, for each u € i£i C Af and v E R2 C Af, y[y := u] = u E Af and 
z[z := v] = v E Af, then (t [y.y, z.z]) E Af, therefore t E Af. 

Let w E Af' <u) be a good sequence and u,v E Af such that for each r E 
R\,s E R2,u[x := r] E Af and v[y := s] E Af. We have [x.u, y.v] E Af' 
because u and v E Af. Thus w [x.u, y.v] is a nice sequence, and by lemma l3~3"l 
(x w [x.u, y.v]) E Af, therefore (x w) E R. 

□ 
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Notation 3.3 For S C Af' <0J , we define S -» K = {t£T/ for each wES,(tw) E 

Definition 3.3 ,4 sei X C A/"' <w is said to be nice iff for each w G X , w is a nice 
sequence. 

Lemma 3.6 Let R G 1Z, then there exists a nice set X such that R = X — > N '. 
Proof By induction on R. 

• R = Af: Take X = {0}, it is clear that Af = {0} -> TV. 

• i? = i?i — > i?2: We have R2 = X 2 ^> Af for a nice set X 2 . Take I = 

u E R\,v E X 2 }- We have u v is a nice sequence for all u E R\ and t; G X 2 . 
Then X is a nice set and we can easly check that R = X — > A/". 

• i? = i?i A R 2 - Similar to the previous case. 

• R — R\ V R 2 . Take X = {[x.u,y.v] / for each r G Ri and s G R2 , u[x := 
r] G Af and w[y := s] G A/"}. We have X is a nice set and, by definition, 
R = X^Af. 

□ 

Remark 3.2 Let R G 7Z and X a nice set such that R = X — > A/". FKe can suppose 
that G X. Indeed, since R C A/", we /laue aZso JJ = IU {0} — > A'. 

Definition 3.4 Let R £ 1Z, we define R 1 - — Li{X / R = X — > AA and X is a nice 
set }. 

Lemma 3.7 Lef R E TZ, then: 

1. R^- is a nice set. 

2. R = R- 1 — > A/". 
Proof 

1. By definition. 

2. This comes also from the fact that: If, for every i G /, R = Xi — > A/", then 
i? = Uie/Xi -> Af. 

□ 

Remark 3.3 For R elZ, R 1 ^ is simply the greatest nice X such that R = X — > Af. 
Ln fact any nice X such that G X and R = X — ► Af would work as well as R 1 ^ . 

Lemma 3.8 Let R eK, t G R and t>* t' '. Then t' E R 

Proof Let u G R^. We have (t u) >* (f u) and (t u) G Af, then (f u) G Af. We 
deduce that t' G R 1 - —* AT = R. □ 
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Remark 3.4 Let R G 1Z, we have not in general Af C R, but we can prove, by 
induction, that fiaAf = {/xa.t / 1 G Af and a is not free in t} C R. 

4 Proof of the theorem 12.3 

Definition 4.1 An interpretation is a function I from the propositional variables 
to 1Z, which we extend to any formula as follows: I(-L) = Af, I {A — > B) = 1(A) — * 
1(B), I (A A B) = 1(A) A 1(B) and I (A VB) = 1(A) V 1(B). 

Lemma 4.1 (Adequation lemma) LetT — {xi : Ai}i<i<„ , A 
/ an interpretation, ui G I(Ai), v~j G I(Bj) ± and t such that T A t 

Then t[x\ := U\, ...,x n := u n ,ai :=* «i, ...,a m : =* u m] G 1(A). 
Proof For each term s, we denote 

s[xi := ui, ...,x n := u„, ai :=* ui, a m :=* v~ m ] by s'. 

We look at the last used rule in the derivation oiT \- t : A ; A 

• ax, ^ e and A{: Easy. 

• — In this case £ = ix.ti with r, a; : C A ti : D ; A and A = C — > D. Let it G 
/(C) and iD G I(D) ± . By induction hypothesis, we have i^[x := u] G /(-D), 
then (t[[x := it] w) G A/", and, by lemma 1331 ((lx.t[ it) w) G A/". Therefore 
(Zx.ti w) G J(£>), hence lx.t[ G 7(C) -> 1(D) = 1(A). 

• Ai and V^: Similar to — >j. 

• V e : In this case t = (h [x.u, y.v}) with T A i x : SVC ; A , T, i:Bh«:4 ; A 
and r, y : C h w : A ; A. Let r G 1(B) and s G /(C). By induction 
hypothesis, we have t[ G I(B)VI(C), u'[x := r] G /(A) and i/[y := s] G /(A). 
Let iD G /(A)- 1 , then (it'[x := r]w) G A/" and (w'[j/ := s]w) G A/", therefore 
(t[ [x.(u'w),y.(v'w)}) G A/". By lemma l3~4l ((t' x [x.u', y. v'])w) G A/", therefore 
(*i [x.u', y.v']) & 1(A). 

• a6s e : In this case t — fxa.u and T A /m.it : A ; A. Let v G /(^l)- 1 -. It sufhes to 
prove that (([la.u') v) G N. By induction hypothesis, w'[a :=* v] G /(A) = A/", 
then, by lemma [331 (f-a.u' v) G A/". Finally (fia.u)' G /(A). 

• afes.;: In this case t = (a,j u) and T A (a 3 u) :_L ; A', aj : Bj. We have to prove 
that t' G A/", by induction hypothesis, u' G I(Bj), then (it' A,) G Af, therefore 
t' = (a (u 1 v~j)) G Af. 

□ 



= W : B jfl<j<r 

A ; A. 



Notation 4.1 We denote Ij\f the interpretation such that, for each propositional 
variable X , Ij^-(X) = Af. 

Proof [of theorem 12.3] : If x\ : A\, x n : A n A t : A; a\ : Bi,...,a m : B m , then, 
by the lemma l3~5l Xi G Ij^(Aj), and, by definition, G I^/(Bj)- L . Therefore by 
lemma |4~T| t = t[x\ :— xi,...,x n := x n ,a% :=* 0, ...,a m :=* 0] G In(A) and finally, 
by lemma [XU t £ Af. □ 



7 



Remark 4.1 We can give now another proof of remark \3.4\ "if fi £ K, the 
lia.M C R". Let t = Iz.fxa.z, we have h t :_L^ p for every propositional vari- 
able p. By lemma \4-l\ for every R G 1Z, t G M — > i?, £/ien, /or every u G A/", 
(i u) G -R, therefore, by lemma [KR fxa.u G i?. 
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